Publication

Back to overview

Phish What You Wish

Type of publication Peer-reviewed
Publikationsform Proceedings (peer-reviewed)
Author Gadient Pascal, Gerig Pascal, Nierstrasz Oscar, Ghafari Mohammad,
Project Agile Software Assistance
Show all

Proceedings (peer-reviewed)

Title of proceedings 21st IEEE International Conference on Software Quality, Reliability, and Security (QRS)
DOI 10.1109/qrs54544.2021.00113

Open Access

URL http://scg.unibe.ch/archive/papers/Gadi21b.pdf
Type of Open Access Repository (Green Open Access)

Abstract

IT professionals have no simple tool to create phishing websites and raise the awareness of users. We developed a prototype that can dynamically mimic websites by using enriched screenshots, which requires no additional programming experience and is simple to set up. The generated websites are functional and remain up-to-date. We found that 98% of the hyperlinks in mimicked websites are functional with our tool, compared to 43% with the best competitor, and only two participants suspected phishing attempts at the time they were performing tasks with our prototype. This work intends to raise awareness for phishing attempts especially with local websites by providing an easy to use prototype to set up such phishing sites.
-